The Rheumatologist
  • Connect with us:
  • Facebook
  • Twitter
  • LinkedIn
  • YouTube
  • Feed
  • Home
  • Conditions
    • Rheumatoid Arthritis
    • SLE (Lupus)
    • Crystal Arthritis
    • Spondyloarthritis
    • Osteoarthritis
    • Soft Tissue Pain
    • Scleroderma
    • Vasculitis
    • Systemic Inflammatory Syndromes
    • Guidelines
  • Drug Updates
    • Biologics & Biosimilars
    • DMARDs & Immunosuppressives
    • Topical Drugs
    • Analgesics
    • Safety
    • Pharma Co. News
  • Professional Topics
    • Ethics
    • Legal
    • Legislation & Advocacy
    • Career Development
      • Certification
      • Education & Training
    • Awards
    • Profiles
    • President’s Perspective
    • Rheuminations
  • Practice Management
    • Billing/Coding
    • Quality Assurance/Improvement
    • Workforce
    • Facility
    • Patient Perspective
  • Technology
    • Electronic Health Records
    • Apps
    • Information Technology
  • Resources
    • Issue Archives
    • Events
    • Multimedia
      • Audio
      • Video
    • From the College
    • American College of Rheumatology
    • Rheumatology Research Foundation
    • Arthritis & Rheumatology
    • Arthritis Care & Research
    • Treatment Guidelines
    • Research Reviews
    • Annual Meeting
      • Abstracts
      • Meeting Reports
    • Rheumatology Image Bank
    • ACR ExamRheum
  • About Us
    • Mission/Vision
    • Meet the Authors
    • Meet the Editors
    • Contribute to The Rheumatologist
    • Subscription
    • Contact
  • Advertise
  • Search
You are here: Home / Articles / Healthcare Data Hacking May Lead to Identity Thefts

Healthcare Data Hacking May Lead to Identity Thefts

September 25, 2019 • By Linda Carroll

  • Tweet
  • Email
Print-Friendly Version / Save PDF

(Reuters Health)—More than 70% of healthcare data breaches in the U.S. have involved sensitive demographic or financial information that could fuel identity theft, a new study suggests.

You Might Also Like
  • Health Data Breaches on the Rise
  • Legal Updates: Healthcare Data Privacy and Security under HIPAA
  • Medical Data, Cybercriminals’ Holy Grail, Now Espionage Target

When a healthcare company is hacked, criminals gain access not only to health information, but also to demographic and financial data that could compromise patients’ privacy and financial security, researchers from the Michigan State and Johns Hopkins report.

ad goes here:advert-1
ADVERTISEMENT
SCROLL TO CONTINUE

Media reports often focus on the numbers of patients affected by these breaches, but what may be more important is the kind of data that has been stolen, they write in Annals of Internal Medicine, online Sept 23.1

Theft of medical data may not affect patients much because there isn’t a big market for it, said the study’s lead author, Xuefeng Jiang, a professor of accounting and information systems at the Eli Broad College of Business at Michigan State University.

ad goes here:advert-2
ADVERTISEMENT
SCROLL TO CONTINUE

“But Social Security numbers, credit card numbers and demographic data—such as names, birth dates and other personal identifiers—can be sold on the dark web,” Prof. Jiang said. “The main message for hospitals and health care providers is, if you have limited resources to safeguard information, you should put more emphasis on the sensitive kinds of information that can be sold on the dark web.”

For patients, the advice is to look past the numbers in media reports and focus on what types of information have been compromised, Prof. Jiang said.

To take a closer look at the kinds of data that get stolen in healthcare data hacks, Prof. Jiang and his coauthor pored over U.S. Department of Health and Human Services records on breaches that occurred between 2009 and 2019.

ad goes here:advert-3
ADVERTISEMENT
SCROLL TO CONTINUE

The HHS requires all health plans, healthcare clearinghouses and healthcare providers to notify the agency after a hack and it publishes information online whenever a breach affects 500 or more people.

After examining the hacks of 1,461 healthcare organizations, the researchers found that all involved at least one piece of demographic data. In 964 breaches, which affected 150 million patients, sensitive information, including Social Security numbers, drivers’ license numbers, and dates of birth, was compromised. Those breaches accounted for 66% of the hacks examined by the researchers.

A total of 513 breaches, or 35%, left service or financial information vulnerable. In 186 of the 513, which affected 49 million patients, compromised sensitive financial information, including credit card and bank account numbers.

Overall, 71% of the hacks that occurred over the 10-year study period, affecting 159 million patients, compromised sensitive demographic or financial information that could be used in identity theft and financial fraud, the researchers concluded.

Pages: 1 2 | Single Page

Filed Under: Technology Tagged With: hacking, health information, Health Information Technology, patient data, Technology

You Might Also Like:
  • Health Data Breaches on the Rise
  • Legal Updates: Healthcare Data Privacy and Security under HIPAA
  • Medical Data, Cybercriminals’ Holy Grail, Now Espionage Target
  • How Decentralized Technology May Revolutionize Data in Healthcare

Simple Tasks

Learn more about the ACR’s public awareness campaign and how you can get involved. Help increase visibility of rheumatic diseases and decrease the number of people left untreated.

Visit the Simple Tasks site »

American College of Rheumatology

Visit the official website for the American College of Rheumatology.

Visit the ACR »

ACR/ARP Annual Meeting

Don’t miss rheumatology’s premier scientific meeting for anyone involved in research or the delivery of rheumatologic care or services.

Visit the ACR Annual Meeting site »

The Rheumatologist newsmagazine reports on issues and trends in the management and treatment of rheumatic diseases. The Rheumatologist reaches 11,500 rheumatologists, internists, orthopedic surgeons, nurse practitioners, physician assistants, nurses, and other healthcare professionals who practice, research, or teach in the field of rheumatology.

About Us / Contact Us / Advertise / Privacy Policy / Terms of Use

  • Connect with us:
  • Facebook
  • Twitter
  • LinkedIn
  • YouTube
  • Feed

Copyright © 2006–2019 American College of Rheumatology. All rights reserved.

ISSN 1931-3268 (print)
ISSN 1931-3209 (online)

loading Cancel
Post was not sent - check your email addresses!
Email check failed, please try again
Sorry, your blog cannot share posts by email.
This site uses cookies: Find out more.